Return-Path: <sentto-279987-4393-1012259606-fc=all.net@returns.groups.yahoo.com> Delivered-To: fc@all.net Received: from 204.181.12.215 [204.181.12.215] by localhost with POP3 (fetchmail-5.7.4) for fc@localhost (single-drop); Mon, 28 Jan 2002 15:15:08 -0800 (PST) Received: (qmail 7979 invoked by uid 510); 28 Jan 2002 23:13:14 -0000 Received: from n7.groups.yahoo.com (216.115.96.57) by all.net with SMTP; 28 Jan 2002 23:13:14 -0000 X-eGroups-Return: sentto-279987-4393-1012259606-fc=all.net@returns.groups.yahoo.com Received: from [216.115.97.187] by n7.groups.yahoo.com with NNFMP; 28 Jan 2002 23:13:26 -0000 X-Sender: fc@red.all.net X-Apparently-To: iwar@onelist.com Received: (EGP: mail-8_0_1_3); 28 Jan 2002 23:13:26 -0000 Received: (qmail 78683 invoked from network); 28 Jan 2002 23:13:26 -0000 Received: from unknown (216.115.97.171) by m6.grp.snv.yahoo.com with QMQP; 28 Jan 2002 23:13:26 -0000 Received: from unknown (HELO red.all.net) (12.232.72.98) by mta3.grp.snv.yahoo.com with SMTP; 28 Jan 2002 23:13:25 -0000 Received: (from fc@localhost) by red.all.net (8.11.2/8.11.2) id g0SNEL212065 for iwar@onelist.com; Mon, 28 Jan 2002 15:14:21 -0800 Message-Id: <200201282314.g0SNEL212065@red.all.net> To: iwar@onelist.com (Information Warfare Mailing List) Organization: I'm not allowed to say X-Mailer: don't even ask X-Mailer: ELM [version 2.5 PL3] From: Fred Cohen <fc@all.net> X-Yahoo-Profile: fcallnet Mailing-List: list iwar@yahoogroups.com; contact iwar-owner@yahoogroups.com Delivered-To: mailing list iwar@yahoogroups.com Precedence: bulk List-Unsubscribe: <mailto:iwar-unsubscribe@yahoogroups.com> Date: Mon, 28 Jan 2002 15:14:21 -0800 (PST) Subject: [iwar] [fc:Internet.security.threats.grow.as.hacker's.abilities.outpace.defenses] Reply-To: iwar@yahoogroups.com Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Internet security threats grow as hacker's abilities outpace defenses By Anick Jesdanun, The Associated Press, 1/27/2002 <a href="http://seattlepi.nwsource.com/business/55618_netsecure24.shtml">http://seattlepi.nwsource.com/business/55618_netsecure24.shtml> NEW YORK -- Spending on Internet security continues to grow, yet the worldwide supernetwork remains more vulnerable than ever to viruses, break-ins and terrorism. Simply put, hackers are getting smarter, and computer networks are getting more complex and difficult to keep safe. "The rate of growth of our vulnerabilities is exceeding the rate of improvements in security measures," said Michael Vatis, former director of the FBI's National Infrastructure Protection Center. "We're not improving fast enough to keep pace with the problem, let alone get ahead of the problem." Bruce Schneier, chief technical officer at Counterpane Internet Security, said companies that invest in security may be reducing their own risks, but new networks with minimal protections are constantly joining the Internet. "Overall, security goes down," Schneier said. "Things are bad out there, and things are getting worse." CERT Coordination Center, the government-funded computer emergency response team at Carnegie Mellon University, says it received reports last year of 52,658 security breaches and attacks, and 2,437 computer vulnerabilities -- more than double the figures for 2000. Part of the increase results from greater awareness, and network operators are reporting incidents they wouldn't have noticed in the past, said Marty Lindner, with CERT. But hackers have also produced better tools for automating attacks, making them more numerous, Lindner added. Last year, the Internet was hit with a new class of worms, which unlike viruses do not require human intervention to spread. Code Red and Nimda found new ways to propagate rapidly and tied up Internet traffic worldwide by exploiting well-known software vulnerabilities. As a result, computer security companies saw revenue growth of 15 percent to 20 percent last year, according to Chris Christiansen, a research analyst at IDC. But that's still lower than the 30 percent to 50 percent growth experienced in past years, Christiansen said. And although security companies said the terrorist attacks Sept. 11 prompted more inquiries and sales, IDC found no lasting boost in revenue. Steve Lipner, director of security assurance at Microsoft Corp., said that although there are breaches, he said, "millions of people transact business, send e-mail, buy things ... and so on every day, and they do that without any ill effect at all." Nevertheless, Lipner acknowledges the industry has work to do. Jerry Freese, director of intelligence at security firm Vigilinx Inc., warned of dangers in the burgeoning world of wireless networks that allow hackers to intercept private communications. Home users are at risk, as they tend to be less knowledgeable about security yet their computers are getting powerful enough for hackers to take over and start denial-of-service strikes. Of greatest concern are cyberattacks that could bring down electric power grids, automated teller machines and transit systems. ------------------------ Yahoo! Groups Sponsor ---------------------~--> Sponsored by VeriSign - The Value of Trust Do you need to encrypt all your online transactions? Find the perfect solution in this FREE Guide from VeriSign. http://us.click.yahoo.com/jWSNbC/UdiDAA/yigFAA/kgFolB/TM ---------------------------------------------------------------------~-> ------------------ http://all.net/ Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/
This archive was generated by hypermail 2.1.2 : 2002-12-31 02:15:03 PST